Senior Analyst in governance of accesses ensuring critical access requests at Riachuelo. Responsible for data governance and risk control strategies in São Paulo.
About the role
- FedRAMP GRC Intern supporting security and compliance programs for U.S. government customers. Gaining practical experience in cybersecurity, governance, risk, and compliance.
Responsibilities
- Help maintain the FedRAMP System Security Plan (SSP), policies, procedures, and system diagrams and adopt 20x lessons.
- Collect and organize audit evidence for monthly and quarterly continuous monitoring activities.
- Support updates to Plans of Action and Milestones (POA&Ms) by verifying remediation progress and documenting results.
- Review vulnerability, patching, and configuration reports; summarize findings in dashboards or status updates.
- Assist in preparing artifacts for 3PAO and agency reviews, and help coordinate walkthroughs or sampling sessions.
- Contribute to playbooks, checklists, and documentation improvements.
- Identify automation & improvement opportunities (data cleanup, report generation, or evidence tracking).
- Collaborate with teams across Security, Cloud Engineering, Product, and Legal on changes or processes that affect FedRAMP.
Requirements
- Currently pursuing a bachelor’s or master’s degree in Cybersecurity, Information Assurance, Computer Science, MIS, or a related discipline.
- Strong written communication and attention to detail.
- Ability to turn technical details into clear, structured documentation.
- Familiarity with one or more of the following: Security and compliance frameworks such as NIST SP 800-53, FedRAMP, or NIST SP 800-171.
- Security concepts like vulnerability management, configuration baselines, or log analysis.
- Cloud technologies (AWS, Azure, GCP).
- Experience with productivity or workflow tools (Jira, Confluence, N8N etc.).
- Comfortable working with datasets; basic scripting knowledge (Python, Go, or similar) is helpful but not required.
- Coursework or certifications in cybersecurity or compliance (Security+, CAP, or similar) preferred.
- Experience (personal experience is acceptable) with vulnerability scanning tools (Tenable/Nessus) or security benchmarks (CIS, STIG).
- Prior internship, lab, or research experience in security, compliance, or IT operations.
- Military or public sector experience — especially if you’re transitioning from service — is highly valued.
Benefits
- Medical, Dental, and Vision Insurance.
- Telehealth coverage
- Flexible work schedules and work from home opportunities
- Development and career growth opportunities
- Open Time Off in addition to 10 paid holidays
- 401(k) matching program
- Adoption Assistance
- Fertility treatments
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Compliance Analyst ensuring adherence to legal and company standards at Copa Energia, monitoring training programs and supporting data protection compliance.
Regulatory Compliance Specialist ensuring compliance with payment card regulations. Collaborating with cross - functional teams to develop and maintain compliant programs in a fintech environment.
Head of Compliance & AMLCO leading compliance and AML/CTF function for Cyprus - regulated Electronic Money Institution. Serving as the primary point of contact with the Central Bank of Cyprus.
GRC Analyst supporting ISO27001 certification preparation at Asiera. Collaborating with technical teams for documentation and compliance.
Cyber GRC Senior Consultant supporting companies in enhancing cybersecurity and compliance. Collaborating with client teams to implement cybersecurity policies and conduct risk assessments.
Internal Controls & Compliance Supervisor managing compliance with SOX and internal controls at Solventum, a healthcare company enhancing solutions for healthcare professionals.
Regulatory Affairs Specialist ensuring compliance and strategic oversight at Multiverse. Drafting regulatory submissions and coordinating oversight processes within a hybrid work environment.
Director of Deposit Compliance responsible for leading compliance efforts for deposit products at Northwest Bank. Ensuring adherence to regulations and managing risk assessment processes for effective compliance operations.
Chargé de la Qualité et Conformité en alternance pour Economie d’Energie. Soutenir la conformité et le contrôle interne tout en participant à la transition énergétique en France.